History

Ramana Kumar 1ae434b9d5 aep-binding: attempted progress on Bisim, 1 sorry remains assumptions include aep_obj aep = IdleAEP and aep_bound_tcb aep = Some x, which I guess is probably a contradiction, but I don't know how to prove that.		2015-09-17 17:55:57 +10:00
..
access-control	Merge branch 'master' into aep-merge	2015-09-10 17:06:45 +10:00
asmrefine	Try to avoid emitting const-globals via memory.	2015-08-17 23:35:06 +10:00
bisim	aep-binding: attempted progress on Bisim, 1 sorry remains	2015-09-17 17:55:57 +10:00
capDL-api	Merge branch 'master' into aep-merge	2015-09-10 17:06:45 +10:00
crefine	aep-binding: fixed crefine, drefine, dpolicy with new decode_bind_aep definition	2015-09-16 10:35:31 +10:00
drefine	aep-binding: fixed crefine, drefine, dpolicy with new decode_bind_aep definition	2015-09-16 10:35:31 +10:00
infoflow	aep-binding: finished infoflow	2015-09-16 11:41:01 +10:00
invariant-abstract	aep-binding: updated AInvs, Access, Refine for new decodeBindAEP	2015-09-15 16:31:14 +10:00
refine	aep-binding: updated AInvs, Access, Refine for new decodeBindAEP	2015-09-15 16:31:14 +10:00
sep-capDL	Merge branch 'master' into aep-merge	2015-09-10 17:06:45 +10:00
Makefile	Treat SimplExportOnly specially in proof Makefile.	2015-09-01 18:25:32 +10:00
README.md	integrate separation kernel config proofs	2014-08-13 22:08:46 +10:00
ROOT	aep-binding: finished infoflow	2015-09-16 11:41:01 +10:00
tests.xml	record more dependencies to avoid redundant rebuilds	2015-05-22 11:48:11 +10:00

Formal Proofs about seL4

This directory contains the formal proofs about seL4, which mostly prove properties about the various seL4 specifications.

Each such proof lives in its own subdirectory: